Buffer Overflow in XcListener of SAP Afaria by SAP
CVE-2015-2820

Currently unrated

Key Information:

Vendor: SAP
Status: Afaria
Vendor: CVE Published:; 1 April 2015

Summary

A buffer overflow vulnerability exists in the XcListener module of SAP Afaria 7.0.6001.5, which may allow remote attackers to send specially crafted requests that can terminate the process. This leads to a denial of service, affecting the availability of the service. It is critical for users of this software to apply the necessary patches and review security advice to protect their systems.

References

http://packetstormsecurity.com/files/132362/SAP-Afaria-7-...

x_refsource_MISC

http://www.securityfocus.com/archive/1/535832/100/800/thr...

mailing-listx_refsource_BUGTRAQ

http://seclists.org/fulldisclosure/2015/Jun/66

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Apr 1, 2015
Vulnerability Reserved
Apr 1, 2015